Owners of hundreds of Porsche cars in Russia cannot drive their vehicles after a significant failure in the factory-installed satellite security system.
This issue began on November 28, 2025. It affected all internal combustion engine (ICE) models in the Rolf dealership network, Russia's biggest...
React Server Components (RSC) in React 19.x suffer from insecure deserialization in the "Flight" protocol, allowing attackers to send crafted HTTP requests to Server Function endpoints for arbitrary code execution without authentication.
The flaw affects react-server-dom-webpack, react-server-dom-parcel, and react-server-dom-turbopack versions 19.0.0 through 19.2.0.
Frameworks...
Researchers from BCA LTD, NorthScan, and ANY.RUN trapped North Korean Lazarus Group operatives, linked to the Famous Chollima division, live in controlled sandboxes during an IT worker infiltration plot targeting U.S. finance and crypto firms.
The team posed as a developer to lure the...
The Aisuru botnet shattered DDoS records in Q3 2025, unleashing a staggering 29.7 terabits per second (Tbps) attack the largest ever documented.
This hyper-volumetric assault, reported by Cloudflare, overwhelmed targets with 14.1 billion packets per second (Bpps) at its peak.
Comprising 1-4 million infected...
ANYRUN and NorthScan have exposed the inner workings of North Korea's Lazarus Group through a bold honeypot operation.
Researchers captured live video of attackers using fake corporate laptops, revealing their full recruitment and attack pipeline.
This marks the first time Lazarus operators linked to...
A Perth-based hacker, Michael Clapsis, received a sentence of over seven years in prison for deploying rogue Wi-Fi networks mimicking Qantas services at airports and on aircraft.
The 44-year-old's "evil twin" attacks, uncovered in April 2024, exposed a broader pattern of cyber offenses, including...